cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPCleaner v2015.10.16.364 by Nicolas Coolman (2015/10/16)
~ Run by Hugo (Administrator) (16/10/2015 15:18:13)
~ Site : http://www.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Nettoyer
~ Report : C:\Users\Hugo\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Hugo\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Deactivate
~ Boot Mode : Normal (Normal boot)
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)


---\\ Service. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\ Navigateur internet. (1)
SUPPRIMÉ: [luyr5p6r.default] - user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"wrc@avast.com\"[...] =>PUP.Optional.IMBooster


---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (21)


---\\ Tâche planifiée. (1)
SUPPRIMÉ tâche: [EDS9TzeKQiFpmxN8LnpSH9IuZag] [C:\Users\Hugo\AppData\Roaming\EDS9TzeKQiFpmxN8LnpSH9IuZag.exe (Not File) ] =>Heuristic.Pirrit


---\\ Explorateur ( Dossiers, Fichiers ). (23)
DEPLACÉ fichier: C:\Windows\Tasks\EDS9TzeKQiFpmxN8LnpSH9IuZag.job =>Heuristic.Pirrit
DEPLACÉ fichier: C:\Windows\System32\Tasks\EDS9TzeKQiFpmxN8LnpSH9IuZag =>Heuristic.Pirrit
DEPLACÉ fichier: C:\Users\Hugo\Downloads\cacaoweb.exe =>PUP.Optional.CacaoWeb
DEPLACÉ fichier: C:\Users\Hugo\Downloads\FreeCompressor-setup(3).exe [ - FreeCompressor] =>PUP.Optional.SPointer
DEPLACÉ fichier: C:\Users\Hugo\Downloads\FreeCompressor-setup(4).exe [ - FreeCompressor] =>PUP.Optional.SPointer
DEPLACÉ fichier: C:\Users\Hugo\Downloads\FreeCompressor-setup.exe [ - FreeCompressor] =>PUP.Optional.SPointer
DEPLACÉ fichier: C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage =>PUP.Optional.ReMarkIt
DEPLACÉ fichier: C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage-journal =>PUP.Optional.ReMarkIt
DEPLACÉ fichier: C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.speedtest.net_0.localstorage =>PUP.Optional.ScriptHost
DEPLACÉ fichier: C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.speedtest.net_0.localstorage-journal =>PUP.Optional.ScriptHost
DEPLACÉ fichier: C:\Documents and Settings\Sissi\Local Settings\Application Data\Temp\iMesh_setup.exe [iMesh Inc. - iMesh] =>PUP.Optional.iMesh
DEPLACÉ fichier: C:\Documents and Settings\Sissi\Local Settings\Application Data\Temp\Tsu701A756E.dll [Tarma Software Research Pty Ltd - InstallMate® Setup Library] =>PUP.Optional.Tarma
DEPLACÉ fichier: C:\Documents and Settings\Sissi\Local Settings\Application Data\Temp\{36A9103F-697D-4F77-AD9C-215FED4A32C9}\Setup.exe [Tarma Software Research Pty Ltd - InstallMate® Setup] =>PUP.Optional.Tarma
DEPLACÉ fichier: C:\Users\Hugo\AppData\Local\Temp\Bubble Dock.txt =>PUP.Optional.BubbleDock
DEPLACÉ fichier: C:\Users\Hugo\AppData\Local\Temp\LBubble Dock.txt =>PUP.Optional.BubbleDock
DEPLACÉ fichier: C:\Users\Hugo\AppData\Local\Temp\Uninstall.exe [Copyright 2013 - ] =>PUP.Optional.Generic
DEPLACÉ fichier: C:\Windows\Installer\{BC27061D-FFCE-4931-A05F-AC964CC026CA}\ARPPRODUCTICON.exe =>PUP.Optional.RegistryReviver
DEPLACÉ dossier: C:\Users\Hugo\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\Program Files (x86)\38e83b2a-79d0-4ae2-bebb-6fa7eb08bd42 =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\Program Files (x86)\f1ff4b77-51c9-4bd5-bf02-679607b5c3ea =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\ProgramData\InstallMate =>PUP.Optional.Tarma
DEPLACÉ dossier: C:\Users\Hugo\AppData\Local\Temp\PlayGem_Reboot =>PUP.Optional.PlayGem
DEPLACÉ dossier: C:\Users\Hugo\AppData\Roaming\NetService =>PUP.Optional.NetService


---\\ Base de Registres ( Clés, Valeurs, Données ). (38)
SUPPRIMÉ clé*: HKCU\Software\EDS9TzeKQiFpmxN8LnpSH9IuZag [] =>Heuristic.Pirrit
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-2935262902-329429690-2837047956-1001\Software\Genesis Mobile [] =>PUP.Optional.Genesis
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-2935262902-329429690-2837047956-1001\Software\tstamptoken [] =>PUP.Optional.MaxComputerCleaner
SUPPRIMÉ clé: HKCU\Software\Genesis Mobile [] =>PUP.Optional.Genesis
SUPPRIMÉ clé: HKCU\Software\tstamptoken [] =>PUP.Optional.MaxComputerCleaner
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\moviedeainstall.com [] =>PUP.Optional.MovieDea
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\re-markable.net [] =>PUP.Optional.Re-Markable
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\static.boostsaves.com [274] =>PUP.Optional.BoostSaves
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\static.re-markable00.re-markable.net [1325] =>PUP.Optional.Re-Markable
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\FlacCodec.FlacCodecCtrl.1 [Flac_Codec Control] =>PUP.Optional.CodecC
SUPPRIMÉ clé*: [X64] HKLM\Software\Classes\Installer\Products\D16072CBECFF13940AF5CA69C40C62AC [Registry Reviver] =>PUP.Optional.RegistryReviver
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\Applications\iMeshV10.exe [] =>PUP.Optional.iMesh
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\Applications\iMesh_setup.exe [] =>PUP.Optional.iMesh
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\Applications\iMesh_V10_en_Setup.exe [] =>PUP.Optional.iMesh
SUPPRIMÉ clé*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Iminent [] =>PUP.Optional.IMBooster
SUPPRIMÉ clé*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\NetTcpHandler [] =>PUP.Optional.NetService
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Tracing\RegistryReviver64_RASAPI32 [] =>PUP.Optional.RegistryReviver
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Tracing\RegistryReviver64_RASMANCS [] =>PUP.Optional.RegistryReviver
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\jg.exe [C:\Program Files (x86)\jogotempo\jg.exe (Not File)] =>PUP.Optional.Jogotempo
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\RegistryReviver.exe [C:\Program Files\ReviverSoft\Registry Reviver\RegistryReviver64.exe (Not File)] =>PUP.Optional.RegistryReviver
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\WordWizard_1.10.0.24 [] =>PUP.Optional.Generic
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\App Paths\jg.exe [C:\Program Files (x86)\jogotempo\jg.exe (Not File)] =>PUP.Optional.Jogotempo
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\App Paths\RegistryReviver.exe [C:\Program Files\ReviverSoft\Registry Reviver\RegistryReviver64.exe (Not File)] =>PUP.Optional.RegistryReviver
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 [] =>PUP.Optional.AdvancedSystemProtector
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS [] =>PUP.Optional.AdvancedSystemProtector
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\FreeCompressor-setup(4)_RASAPI32 [] =>PUP.Optional.SPointer
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\FreeCompressor-setup(4)_RASMANCS [] =>PUP.Optional.SPointer
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\kujytuo_RASAPI32 [] =>Virus.Kujytuo
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\kujytuo_RASMANCS [] =>Virus.Kujytuo
SUPPRIMÉ clé*: [X64] HKLM\Software\Classes\Installer\Features\D16072CBECFF13940AF5CA69C40C62AC [] =>PUP.Optional.RegistryReviver
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{242D2038-5170-41F0-905E-34912F2F60E4} [C:\Program Files (x86)\Iminent\Iminent.exe] =>PUP.Optional.IMBooster
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{DC5BBC5E-355D-41FB-9852-1EDB83A4C6D8} [C:\Program Files (x86)\Iminent\Iminent.Messengers.exe] =>PUP.Optional.IMBooster
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{AC88F238-BE03-4F07-968B-5895F2571BB3}C:\users\hugo\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\hugo\appdata\roaming\cacaoweb\cacaoweb.exe] =>PUP.Optional.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{A3B9213B-0F04-4921-A5C3-C0BE066BEC04}C:\users\hugo\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\hugo\appdata\roaming\cacaoweb\cacaoweb.exe] =>PUP.Optional.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{1D6466E7-2539-4EC4-929F-994D8DC6094E}C:\users\hugo\downloads\cacaoweb.exe [C:\users\hugo\downloads\cacaoweb.exe] =>PUP.Optional.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{5449E446-22FF-4B3D-99D6-9BF91A627402}C:\users\hugo\downloads\cacaoweb.exe [C:\users\hugo\downloads\cacaoweb.exe] =>PUP.Optional.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{D5CB648E-358F-4F79-A291-E8336FEC4CE8}C:\users\hugo\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\hugo\appdata\roaming\cacaoweb\cacaoweb.exe] =>PUP.Optional.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{CD7F16DC-3D50-40E6-A820-3A7ECE825EB5}C:\users\hugo\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\hugo\appdata\roaming\cacaoweb\cacaoweb.exe] =>PUP.Optional.CacaoWeb


---\\ Bilan de la réparation
~ Réparation réalisée avec succès.


---\\ Statistiques
~ Items scannés : 19315
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 63


~ End of clean in 5 minutes
===================
ZHPCleaner-[R]-16102015-15_24_02.txt
ZHPCleaner-[S]-16102015-15_17_48.txt

Publicité


Signaler le contenu de ce document

Publicité